Behavioral task
behavioral1
Sample
9715a59d120816e681efb16fd53ef4e1522e1e8157920e3ea38e83286f278269.elf
Resource
debian9-armhf-20221111-en
debian-9-armhf
0 signatures
150 seconds
General
-
Target
ba008dbbd6458dd67253cdf7dda9b2ad.bin
-
Size
54KB
-
MD5
50c07bd35acec53153ecfca9796f6ea0
-
SHA1
8eb43f958865d9ce1b511b5620c2435518085a48
-
SHA256
c25d826e20229e40a43a162185b2d9c0ce35d597df17b590155b249713234948
-
SHA512
66f4590f7f41346af97f7af8ced992b2ae848f657b91d0c26c57928e20f4f7d94b874a385b9ac0152927e146238c05a21a5ef8648aead9ae329721b0758d7d82
-
SSDEEP
768:GuBtOD7uqvz2r94bDpcLda4bvH+OzeahSUY+nD6E0N++wTGPVSgvW/JI+Aj3RVx3:ji7t2BGDpMQ4bPIKX6Eq+Aog+vAj3xbL
Score
10/10
Malware Config
Signatures
-
Detected Gafgyt variant 1 IoCs
Processes:
resource yara_rule static1/unpack001/9715a59d120816e681efb16fd53ef4e1522e1e8157920e3ea38e83286f278269.elf family_gafgyt -
Gafgyt family
Files
-
ba008dbbd6458dd67253cdf7dda9b2ad.bin.zip
Password: infected
-
9715a59d120816e681efb16fd53ef4e1522e1e8157920e3ea38e83286f278269.elf.elf linux arm